Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/NhhbQb0rSaSD1gEW8oFZQo9Pcyg.roa
File: NhhbQb0rSaSD1gEW8oFZQo9Pcyg.roa (raw, json)
Hash identifier: kDrNod8n++gjcG3SHiwFyOGISfPyCCyrzU+p5Btf3yw=
Subject key identifier: 36:18:5B:41:BD:2B:49:A4:83:D6:01:16:F2:81:59:42:8F:4F:73:28
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 02B5
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/NhhbQb0rSaSD1gEW8oFZQo9Pcyg.roa
Signing time: Wed 03 Sep 2025 14:55:02 +0000
ROA not before: Wed 03 Sep 2025 14:55:02 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 152609
IP address blocks: 157.20.248.18/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 693 (0x2b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Sep 3 14:55:02 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=36185B41BD2B49A483D60116F28159428F4F7328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:88:8b:c8:05:40:65:dd:46:f6:c2:0c:ee:
aa:71:ce:fa:83:cd:70:a3:7e:b9:af:95:87:db:42:
f2:b7:8e:60:c9:de:4d:d6:25:23:57:ee:33:1c:80:
2c:3d:e3:60:d7:7c:36:be:9a:49:15:8a:bc:86:e7:
f7:04:93:b8:1b:00:a0:14:9b:74:6c:4d:98:44:26:
40:c7:67:aa:07:42:92:94:2a:3f:64:f1:23:2e:ef:
12:46:6a:ac:c4:f7:9d:f3:87:27:58:5b:0d:da:81:
5d:93:af:f2:58:33:48:21:9a:e4:bc:5d:2d:c6:7f:
8a:12:5a:c2:6a:3e:a3:de:d8:e4:44:77:90:1f:9f:
10:04:dd:0f:9f:c5:2c:9e:41:5d:c6:37:a4:a0:41:
be:5d:86:a2:5a:3a:77:52:8f:d2:30:dc:13:62:3e:
df:28:c7:7f:b8:f1:b7:e2:29:a0:ff:9c:a9:a1:25:
50:4f:5d:d4:92:5b:1f:61:5b:95:b8:d9:4f:34:de:
cf:e7:71:fb:af:69:3f:3f:40:d8:b3:d9:ac:1f:37:
ec:fb:09:2c:35:5e:8a:6c:ef:35:d7:d9:96:f9:52:
f1:81:a0:fb:49:a5:82:0f:84:6d:e3:77:5f:07:1b:
83:5f:93:86:be:e7:34:8d:32:2c:a3:02:04:6f:53:
ac:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:18:5B:41:BD:2B:49:A4:83:D6:01:16:F2:81:59:42:8F:4F:73:28
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/NhhbQb0rSaSD1gEW8oFZQo9Pcyg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.18/32
Signature Algorithm: sha256WithRSAEncryption
c0:cf:cb:3d:ca:45:82:88:19:f0:a6:fd:54:4f:40:6c:d4:03:
8f:e6:80:63:74:1c:17:49:57:2e:ea:3f:93:1f:0a:9c:a8:23:
33:97:05:fc:86:36:15:54:de:54:90:80:ec:18:98:7f:e0:ac:
49:ed:3b:05:39:a2:9b:a2:c5:12:f8:60:e1:f9:ab:36:5d:e2:
e2:cb:fc:51:40:41:c1:2f:26:37:0f:ae:d9:f7:b0:ca:1b:17:
03:2d:62:7f:cf:bf:4a:f4:21:3f:f5:8c:4a:89:93:40:59:2d:
e2:fd:95:c3:76:6f:36:e5:de:2e:12:37:95:c2:8c:f5:0a:12:
54:21:a8:e7:e8:ae:52:a9:93:9b:d6:fb:d1:e1:28:9a:f1:d8:
58:90:0b:b5:6d:5d:5a:92:ff:81:04:7b:54:80:43:5a:9c:c9:
23:fe:b2:b8:b4:bf:10:b7:87:9f:57:6e:cc:62:a6:bd:c6:0d:
d5:2b:fe:27:03:ed:0e:d0:87:8e:4f:96:ac:65:ca:9b:d8:ea:
03:4d:cd:d6:1a:e6:00:60:dc:d0:31:4e:5d:95:f4:6f:d6:95:
53:c9:31:65:75:1d:bf:00:3a:f4:59:91:8c:08:46:ef:d0:a6:
21:88:d5:9b:b2:c0:8d:d4:bd:fa:6b:ea:b6:28:bf:88:53:e5:
92:e1:ef:98
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICArUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMz
QTcyQUFGNzk4MTA1QkIyNzdGMDk0NDU4RTQ2NEI0NjU5RjgwMzAeFw0yNTA5MDMx
NDU1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2MTg1QjQxQkQyQjQ5
QTQ4M0Q2MDExNkYyODE1OTQyOEY0RjczMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEUIiLyAVAZd1G9sIM7qpxzvqDzXCjfrmvlYfbQvK3jmDJ3k3W
JSNX7jMcgCw942DXfDa+mkkViryG5/cEk7gbAKAUm3RsTZhEJkDHZ6oHQpKUKj9k
8SMu7xJGaqzE953zhydYWw3agV2Tr/JYM0ghmuS8XS3Gf4oSWsJqPqPe2OREd5Af
nxAE3Q+fxSyeQV3GN6SgQb5dhqJaOndSj9Iw3BNiPt8ox3+48bfiKaD/nKmhJVBP
XdSSWx9hW5W42U803s/ncfuvaT8/QNiz2awfN+z7CSw1Xops7zXX2Zb5UvGBoPtJ
pYIPhG3jd18HG4Nfk4a+5zSNMiyjAgRvU6zhAgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUNhhbQb0rSaSD1gEW8oFZQo9PcygwHwYDVR0jBBgwFoAU8zpyqveYEFuyd/CU
RY5GS0ZZ+AMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC84
enB5cXZlWUVGdXlkX0NVUlk1R1MwWlotQU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
Lzh6cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0lBTVQvTmhoYlFiMHJTYVNEMWdFVzhvRlpR
bzlQY3lnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAEwBwMFAJ0U+BIw
DQYJKoZIhvcNAQELBQADggEBAMDPyz3KRYKIGfCm/VRPQGzUA4/mgGN0HBdJVy7q
P5MfCpyoIzOXBfyGNhVU3lSQgOwYmH/grEntOwU5opuixRL4YOH5qzZd4uLL/FFA
QcEvJjcPrtn3sMobFwMtYn/Pv0r0IT/1jEqJk0BZLeL9lcN2bzbl3i4SN5XCjPUK
ElQhqOforlKpk5vW+9HhKJrx2FiQC7VtXVqS/4EEe1SAQ1qcySP+sri0vxC3h59X
bsxipr3GDdUr/icD7Q7Qh45PlqxlypvY6gNNzdYa5gBg3NAxTl2V9G/WlVPJMWV1
Hb8AOvRZkYwIRu/QpiGI1ZuywI3Uvfpr6rYov4hT5ZLh75g=
-----END CERTIFICATE-----
Generated at Thu Sep 18 16:08:44 2025 by rpki-client